Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid squid 2.5 .stable5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1345
Squid 2.5.STABLE9 and previous versions does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.
Squid Squid 2.5.stable6
Squid Squid 2.5.stable7
Squid Squid 2.5.stable1
Squid Squid 2.5.stable2
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.5.stable5
Squid Squid 2.5.stable8
Squid Squid 2.5.stable9
NA
CVE-2005-0241
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and previous versions does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote malicious users to poison the cache or bypass access controls b...
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.5.stable1
Squid Squid 2.5.stable2
Squid Squid 2.5.stable5
Squid Squid 2.5.stable6
Squid Squid 2.5.stable7
NA
CVE-2005-0173
squid_ldap_auth in Squid 2.5 and previous versions allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
Squid Squid 2.1.patch2
Squid Squid 2.1.pre1
Squid Squid 2.2.pre2
Squid Squid 2.2.stable1
Squid Squid 2.3.stable2
Squid Squid 2.3.stable3
Squid Squid 2.4.stable6
Squid Squid 2.4.stable7
Squid Squid 2.0.patch2
Squid Squid 2.0.pre1
Squid Squid 2.1.release
Squid Squid 2.2.devel3
Squid Squid 2.2.stable4
Squid Squid 2.2.stable5
Squid Squid 2.4.stable1
Squid Squid 2.4.stable2
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.0.release
Squid Squid 2.1.patch1
Squid Squid 2.2.devel4
Squid Squid 2.2.pre1
NA
CVE-2005-0194
Squid 2.5, when processing the configuration file, parses empty Access Control Lists (ACLs), including proxy_auth ACLs without defined auth schemes, in a way that effectively removes arguments, which could allow remote malicious users to bypass intended ACLs if the administrator ...
Squid Squid 2.0.release
Squid Squid 2.1.patch1
Squid Squid 2.2.pre1
Squid Squid 2.2.pre2
Squid Squid 2.3.devel3
Squid Squid 2.3.stable1
Squid Squid 2.4.stable3
Squid Squid 2.4.stable4
Squid Squid 2.5.stable6
Squid Squid 2.0.patch2
Squid Squid 2.0.pre1
Squid Squid 2.1.release
Squid Squid 2.2.devel3
Squid Squid 2.2.devel4
Squid Squid 2.2.stable5
Squid Squid 2.3.devel2
Squid Squid 2.4.stable1
Squid Squid 2.4.stable2
Squid Squid 2.5.stable4
Squid Squid 2.5.stable5
Squid Squid 2.1.patch2
Squid Squid 2.1.pre1
NA
CVE-2005-0211
Buffer overflow in wccp.c in Squid 2.5 prior to 2.5.STABLE7 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
Squid-cache Squid 2.5.stable1
Squid-cache Squid 2.5.stable6
Squid-cache Squid 2.5.stable3
Squid-cache Squid 2.5.stable5
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable4
Debian Debian Linux 3.0
NA
CVE-2005-0446
Squid 2.5.STABLE8 and previous versions allows remote malicious users to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure.
Squid Squid 2.1.patch1
Squid Squid 2.1.patch2
Squid Squid 2.2.devel4
Squid Squid 2.2.pre1
Squid Squid 2.3.devel3
Squid Squid 2.3.stable1
Squid Squid 2.3 Stable5
Squid Squid 2.4
Squid Squid 2.4 .stable2
Squid Squid 2.4 .stable6
Squid Squid 2.4 .stable7
Squid Squid 2.5.stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 .stable6
Squid Squid 2.5 Stable3
Squid Squid 2.0.patch1
Squid Squid 2.1.pre1
Squid Squid 2.1.pre3
Squid Squid 2.2.pre2
Squid Squid 2.2.stable1
Squid Squid 2.2.stable2
Squid Squid 2.3.stable2
NA
CVE-2005-0718
Squid 2.5.STABLE7 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access previously freed memory.
Squid Squid 2.0.patch1
Squid Squid 2.0.patch2
Squid Squid 2.1.pre3
Squid Squid 2.1.pre4
Squid Squid 2.1.patch2
Squid Squid 2.1.pre1
Squid Squid 2.0.pre1
Squid Squid 2.0.release
Squid Squid 2.1.release
Squid Squid 2.1 Patch2
Squid Squid 2.2.stable4
Squid Squid 2.2.stable5
Squid Squid 2.3.stable5
Squid Squid 2.3 .stable4
Squid Squid 2.4.stable4
Squid Squid 2.4.stable6
Squid Squid 2.5.stable2
Squid Squid 2.5.stable3
Squid Squid 2.5 .stable4
Squid Squid 2.5 .stable5
Squid Squid 2.2.pre1
Squid Squid 2.2.pre2
NA
CVE-2005-0626
Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies in caches, may cause Set-Cookie headers to be sent to other users, which allows malicious users to steal the related cookies.
Squid Squid 2.5.stable6
Squid Squid 2.5.stable7
Squid Squid 2.5.stable5
NA
CVE-2005-0174
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not part of a CRLF pair, and...
Squid Squid 2.5.6
Squid Squid 2.5 .stable1
Squid Squid 2.5 .stable3
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.5.stable5
Squid Squid 2.5 .stable6
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable6
Squid Squid 2.5.stable7
Squid Squid 2.5 Stable4
Squid Squid 2.5 Stable9
Squid Squid 2.5.stable1
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable4
Squid Squid 2.5 .stable5
NA
CVE-2005-0175
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache via an HTTP response splitting attack.
Squid Squid 2.5.6
Squid Squid 2.5.stable7
Squid Squid 2.5 .stable1
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.5 .stable6
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 Stable4
Squid Squid 2.5 Stable9
Squid Squid 2.5.stable1
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable3
Squid Squid 2.5 .stable4
Squid Squid 2.5 .stable5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »